CVE-2020-6147
8.8
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. This instance exists in the USDC file format FIELDS section decompression heap overflow.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Pixar | Pixar OpenUSD 20.05 , Apple macOS Catalina 10.15.3 | affected |
Weaknesses
- CWE-122: CWE-122: Heap-based Buffer Overflow
ADP Enrichment
CVE Program Container
Additional References
- https://talosintelligence.com/vulnerability_reports/TALOS-2020-1094
- http://seclists.org/fulldisclosure/2020/Nov/20
References
- https://talosintelligence.com/vulnerability_reports/TALOS-2020-1094
- http://seclists.org/fulldisclosure/2020/Nov/20
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.